Ethereal Group : Security Vulnerabilities, CVEs, (Overflow) CVSS score >= 7
Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector.
Max CVSS
10.0
EPSS Score
3.81%
Published
2006-07-21
Updated
2018-10-18
Multiple format string vulnerabilities in Wireshark (aka Ethereal) 0.10.x to 0.99.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) ANSI MAP, (2) Checkpoint FW-1, (3) MQ, (4) XML, and (5) NTP dissectors.
Max CVSS
10.0
EPSS Score
2.11%
Published
2006-07-21
Updated
2018-10-18
Stack-based buffer overflow in the dissect_ospf_v3_address_prefix function in the OSPF protocol dissector in Ethereal 0.10.12, and possibly other versions, allows remote attackers to execute arbitrary code via crafted packets.
Max CVSS
7.5
EPSS Score
3.06%
Published
2005-12-10
Updated
2017-10-11
Buffer overflow vulnerability in the unicode_to_bytes in the Service Location Protocol (srvloc) dissector (packet-srvloc.c) in Ethereal allows remote attackers to execute arbitrary code via a srvloc packet with a modified length value.
Max CVSS
10.0
EPSS Score
8.27%
Published
2005-10-20
Updated
2017-10-11
Double free vulnerability in the ICEP dissector in Ethereal before 0.10.11 may allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
4.61%
Published
2005-05-05
Updated
2017-10-11
Buffer overflow in the Etheric dissector in Ethereal 0.10.7 through 0.10.9 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.
Max CVSS
7.5
EPSS Score
2.42%
Published
2005-05-02
Updated
2017-10-11
Buffer overflow in the X11 dissector in Ethereal 0.8.10 through 0.10.8 allows remote attackers to execute arbitrary code via a crafted packet.
Max CVSS
7.5
EPSS Score
3.58%
Published
2005-05-02
Updated
2017-10-11
Buffer overflow in the MMSE dissector for Ethereal 0.10.1 to 0.10.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
10.0
EPSS Score
3.27%
Published
2004-08-18
Updated
2017-10-11
Heap-based buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SOCKS dissector.
Max CVSS
7.5
EPSS Score
2.26%
Published
2003-12-01
Updated
2017-10-11
Buffer overflow in Ethereal 0.9.15 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malformed GTP MSISDN string.
Max CVSS
7.5
EPSS Score
2.26%
Published
2003-12-01
Updated
2017-10-11
The OSI dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via invalid IPv4 or IPv6 prefix lengths, possibly triggering a buffer overflow.
Max CVSS
7.5
EPSS Score
2.93%
Published
2003-07-24
Updated
2017-10-11
Multiple integer overflow vulnerabilities in Ethereal 0.9.11 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via the (1) Mount and (2) PPP dissectors.
Max CVSS
7.5
EPSS Score
9.69%
Published
2003-06-09
Updated
2017-10-11
Heap-based buffer overflow in the NTLMSSP code for Ethereal 0.9.9 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
7.5
EPSS Score
2.93%
Published
2003-04-02
Updated
2017-10-11
Buffer overflow in the ISIS dissector for Ethereal 0.9.5 and earlier allows remote attackers to cause a denial of service or execute arbitrary code via malformed packets.
Max CVSS
7.5
EPSS Score
0.59%
Published
2002-09-24
Updated
2008-09-10
Buffer overflow in X11 dissector in Ethereal 0.9.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code while Ethereal is parsing keysyms.
Max CVSS
7.5
EPSS Score
2.93%
Published
2002-06-18
Updated
2016-10-18
15 vulnerabilities found